| | SLO | ENG | Piškotki in zasebnost

Večja pisava | Manjša pisava

Izpis gradiva Pomoč

Naslov:Identifying key activities, artifacts and roles in agile engineering of secure software with hierarchical clustering
Avtorji:ID Mihelič, Anže (Avtor)
ID Hovelja, Tomaž (Avtor)
ID Vrhovec, Simon (Avtor)
Datoteke:URL https://www.mdpi.com/2076-3417/13/7/4563
 
.pdf applsci-13-04563.pdf (557,17 KB)
MD5: 9BC54D736950D301EAE16C0E6500E48E
 
URL https://www.mdpi.com/2076-3417/13/7/4563
 
Jezik:Angleški jezik
Vrsta gradiva:Znanstveno delo
Tipologija:1.01 - Izvirni znanstveni članek
Organizacija:FVV - Fakulteta za varnostne vede
Opis:Different activities, artifacts, and roles can be found in the literature on the agile engineering of secure software (AESS). The purpose of this paper is to consolidate them and thus identify key activities, artifacts, and roles that can be employed in AESS. To gain initial sets of activities, artifacts, and roles, the literature was first extensively reviewed. Activities, artifacts, and roles were then cross-evaluated with similarity matrices. Finally, similarity matrices were converted into distance matrices, enabling the use of Ward’s hierarchical clustering method for consolidating activities, artifacts, and roles into clusters. Clusters of activities, artifacts, and roles were then named as key activities, artifacts, and roles. We identified seven key activities (i.e., security auditing, security analysis and testing, security training, security prioritization and monitoring, risk management, security planning and threat modeling; and security requirements engineering), five key artifacts (i.e., security requirement artifacts, security repositories, security reports, security tags, and security policies), and four key roles (i.e., security guru, security developer, penetration tester, and security team) in AESS. The identified key activities, artifacts, and roles can be used by software development teams to improve their software engineering processes in terms of software security.
Ključne besede:secure software development, security engineering, agile methods, agile development, software development, software engineering, software security, application security, cybersecurity, cyber resilience
Status publikacije:Objavljeno
Verzija publikacije:Objavljena publikacija
Poslano v recenzijo:27.01.2023
Datum sprejetja članka:29.03.2023
Datum objave:04.04.2023
Leto izida:2023
Št. strani:16 str.
Številčenje:Vol. 13, iss. 7
PID:20.500.12556/DKUM-86418 Novo okno
UDK:004.056
eISSN:2076-3417
COBISS.SI-ID:147677699 Novo okno
DOI:10.3390/app13074563 Novo okno
ISSN pri članku:2076-3417
Datum objave v DKUM:29.11.2023
Število ogledov:341
Število prenosov:8
Metapodatki:XML RDF-CHPDL DC-XML DC-RDF
Področja:Ostalo
:
Kopiraj citat
  
Skupna ocena:(0 glasov)
Vaša ocena:Ocenjevanje je dovoljeno samo prijavljenim uporabnikom.
Objavi na:Bookmark and Share


Postavite miškin kazalec na naslov za izpis povzetka. Klik na naslov izpiše podrobnosti ali sproži prenos.

Gradivo je del revije

Naslov:Applied sciences
Skrajšan naslov:Appl. sci.
Založnik:MDPI
ISSN:2076-3417
COBISS.SI-ID:522979353 Novo okno

Licence

Licenca:CC BY 4.0, Creative Commons Priznanje avtorstva 4.0 Mednarodna
Povezava:http://creativecommons.org/licenses/by/4.0/deed.sl
Opis:To je standardna licenca Creative Commons, ki daje uporabnikom največ možnosti za nadaljnjo uporabo dela, pri čemer morajo navesti avtorja.
Začetek licenciranja:04.04.2023

Komentarji

Dodaj komentar

Za komentiranje se morate prijaviti.

Komentarji (0)
0 - 0 / 0
 
Ni komentarjev!

Nazaj
Logotipi partnerjev Univerza v Mariboru Univerza v Ljubljani Univerza na Primorskem Univerza v Novi Gorici